tags:

views:

47

answers:

3
Q: 

How do I implement a dummy filter to exclude a file from being filtered?

Hi, I am trying to implement a filter for all my files excluding login.jsp. I understand that filter mapping cannot exclude certain files. What I need to do is to create another filter to map just the login.jsp. How do I create another file that with url pattern /login.jsp and without SessionFilter being processed after it? Here is part of my code for session filter for all files. 

public class SessionFilter implements Filter{ 
   RequestDispatcher rd = null; 

  public void doFilter(ServletRequest request, ServletResponse response, FilterChain filterChain) 
   throws IOException, ServletException{ 
      HttpServletRequest request = (HttpServletRequest)request; 
      HttpSession session = request.getSession(); 

   // New Session so forward to login.jsp 
   if (session.isNew()){ 
     rd = request.getRequestDispatcher("login.jsp"); 
     rd.forward(request, response); 
  } 

  // Not a new session so continue to the requested resource 
   else{ 
      filterChain.doFilter(request, response); 
  } 
}
A: 

You can check if the requested path is in your "excluded list" with request.getServletPath().

If you want a new Filter separated from SessionFilter, you could either set a special flag as request attribute (such as "loginPage") which will be checked by other filters (if you want a new Filter separated from SessionFilter) or you can simply not invoke the chain.doFilter().

If you're modifying SessionFilter, just don't redispatch to "login.jsp"

Colin Hebert  2010-10-11 07:22:19
Thanks for your reply. I am not sure how to not invoke chain.doFilter().
JustToHelp  2010-10-11 07:29:31
@JustToHelp, simply don't use this statement ;)
Colin Hebert  2010-10-11 07:30:16
@JustToHelp: you are already doing it at the code you have pasted (the last code line, inside the else block).
Tomas Narros  2010-10-11 07:31:32
I am trying to redirect users to my login page if there is an invalid session. if(!session.isNew()){ filterChain.doFilter(request, response); } else{ rd = request.getRequestDispatcher("login.jsp"); rd.forward(request, response); }The problem is that if I use requestdispatcher, there will be an infinite loop when the users access login.jsp.
JustToHelp  2010-10-11 07:47:45
@JustToHelp, so if `request.getServletPath()` is your login page, don't call the `filterChain.doFilter`, this way other filters won't be called.
Colin Hebert  2010-10-11 07:51:40
I am modifying my SessionFilter but I am still having the error. String path = req.getServletPath();if(!session.isNew()){ filterChain.doFilter(request, response); } else if(path.indexOf("login.jsp")!=-1){ //do nothing } else{ rd = request.getRequestDispatcher("login.jsp"); rd.forward(request, response); }
JustToHelp  2010-10-11 08:12:25
If session isn't new (because your didn't go through the login page) the chain will be done, you have to check the servlet path first.
Colin Hebert  2010-10-11 08:15:40
ah, I see what you mean. But even with checking at the if statement it still cant run. String path = req.getServletPath(); int a = -1; a= path.indexOf("login.jsp"); HttpSession session = req.getSession(); if(!session.isNew() ||a==-1){ filterChain.doFilter(request, response); } else{ rd = request.getRequestDispatcher("login.jsp"); rd.forward(request, response); }
JustToHelp  2010-10-11 08:28:31
@JustToHelp, I was more thinking about this code : http://ideone.com/H1xjk
Colin Hebert  2010-10-11 08:40:18
adding return does not work, it will give me an empty page
JustToHelp  2010-10-11 09:07:41
I added a print message inside the if statement. The SessionFilter works, all the other page will print the same message. But how to redirect to login.jsp without causing an infinite loop?
JustToHelp  2010-10-11 09:24:06
ok I got it to work by manually inputing the url pattern instead of a generic /*
JustToHelp  2010-10-11 11:33:47
A: 

You can add another if-clause (or another condition in the existing one) that checks whether the current requestURI is not in a list of preconfigured files. This list can be passed with an <init-param> to the filter

Bozho  2010-10-11 07:23:40
+1  A: 

You don't need a new filter. You could check it at your own filter.

if(request.getServletPath().equals("login.jsp") || !session.isNew()) { // or "/login.jsp", not sure about this
   filterChain.doFilter(request, response); 
} else { // session is new and it's not login.jsp
     rd = request.getRequestDispatcher("login.jsp"); 
     rd.forward(request, response);    
}

But I don't like this kind of approach. It seems like rewriting the JAAS API for servlets. And it implies hardcoding jsp paths, which could be not a good idea in order of maintenance and portability.

Tomas Narros  2010-10-11 07:26:17

related questions

Java Time Zone is messed up
Eclipse on win64
Automate builds for Java RCP for deployment with JNLP
Why are professors or schools picking Java over C++ to teach to students?
Is there a real benefit of using J#?
Public/Popular Websites using JavaServer Faces
Why can't I use a try block around my super() call?
Accessing post variables using Java Servlets
Personal Linux web server
Is this really widening vs autoboxing?
How can I Java webstart multiple, dependent, native libraries?
Why can't I call toString() on a Java primitive?
How do I use Java to read from a file that is actively being written?
What code analysis tools do you use for your Java projects?
IllegalArgumentException or NullPointerException for a null parameter?
How do I configure and communicate with a serial port?
What is the best way to parse strings in Java
Getting started with a custom JXTA PeerGroup
Creating a custom button in Java
How to get started "writing" a code coverage tool?
Which Build-/Configuration Management Tool?
What is the difference between an int and an Integer in Java/C#?
What is the meaning of the type safety warning in certain Java generics casts?
How would you access Object properties from within an object method?
Converting CSV File to XML in Java